Security for Beginners
by Sergey Okinchuk
Who Attacks, and WhyChapter 2: Identity
Topic 05

No System Is Perfectly Secure

Concept

There is no switch that makes a system "secure" and finished. This sounds like bad news, but it is actually the most freeing idea in the whole field — because once you stop chasing perfect, you can start doing the thing that actually works: managing risk.

Every defense has a cost and a limit. Every system trades some safety for being usable. And a determined attacker with enough time can eventually find a way. So security is not about being unbreakable; it is about making attacks hard enough, and the damage small enough, that what is left over is something you can live with.

There is no "perfect" setting — only the right balance for what you're protecting
You're guarding something low-value and rarely targetedLighter security, more convenience
You're guarding money, identity, or many people's dataHeavier security, accept more friction
You try to make it perfectly, totally secureUnusable — and still not perfect

Security Versus Convenience

The most secure computer in the world is unplugged, encased in concrete, and at the bottom of the ocean — and it is also useless. That is the extreme, but it makes the point: every real system gives up some safety in exchange for being usable. A bank could require five separate proofs of identity for every login, and it would be more secure and so annoying that no one would bank there. Choosing where to sit between locked-down and usable is a deliberate decision, not a failure to reach perfect.

A Process, Not a State

Even if a system were perfectly tuned today, it would not stay that way. New weaknesses are discovered, software ages, attackers invent new tricks, and people make mistakes. Security is therefore something you keep doing, not something you finish — more like staying healthy than like passing a single test. A system that was secure last year is not automatically secure now.

Managing Risk, Not Eliminating It

Because you cannot remove all risk, the real job is to reduce it: make attacks less likely, and limit the damage when one succeeds. This is where the honest, slightly uncomfortable idea of acceptable risk comes in. Defenders deliberately decide that some small risks are not worth the cost of removing, and accept them. That is not a cop-out — it is the same calculation you make every time you cross a street. Living with sensible, measured risk is normal; pretending you can erase it is the mistake.

Why We Stack Defenses

If any single defense can fail — and they all can — then leaning on just one is a gamble. So defenders stack several independent layers, so that when one fails, others still stand. The whole of Chapter 8 is about this idea, called defense in depth; for now, just hold the instinct: never bet everything on one wall, because every wall eventually has a bad day.

Common Confusions
  • "The right tools can make me 100% secure." No tool removes all risk. Security reduces and manages risk; it never eliminates it, no matter what a product promises.
  • "If a system got breached, someone must have been incompetent." Even well-run systems get breached. The real measure is how much damage was contained, not whether an attack could ever happen.
  • "More security is always better." Past a point, extra friction pushes people into unsafe workarounds — writing passwords on sticky notes, turning protections off. Defenders balance security against usability on purpose.
  • "Accepting any risk means you've given up." Accepting small, measured risk is how every sensible decision works, from crossing a street to running a bank. Pretending risk can hit zero is the actual error.
Why It Matters
  • It sets a realistic bar — "good enough for the risk" instead of an impossible "perfect" — which is how every real defender actually thinks.
  • It explains why security is ongoing work, and why a breach is not automatic proof that someone was careless or stupid.
  • It plants the defense-in-depth instinct — never rely on a single wall — that the whole of Chapter 8 builds on.

Knowledge Check

If perfect security isn't achievable, what is security actually about?

  • Managing risk — making attacks hard and damage small enough to accept
  • Reaching a permanently locked-down state where the system is completely unbreakable by any attacker
  • Buying enough security products to remove every possible risk
  • Disconnecting every system so nothing can ever be reached

Why can "more security" sometimes make things worse?

  • Too much friction pushes people into unsafe workarounds
  • Because security tools are always extremely expensive to buy
  • Because adding any security instantly attracts more attackers
  • Because each new protection deletes some of your data

A company is breached despite being well-run. What does this topic say that means?

  • Breaches can happen even to careful teams; what matters is how well damage was contained
  • It proves the team must have been careless or unskilled
  • It proves they simply didn't buy the right product
  • It proves that perfect, complete security was fully within their reach and they simply failed to implement it correctly

You got correct